mort
/
webconfig
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
Tree: 2084030fba
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2084030fba'
${ noResults }
webconfig/core/ssl.sh

ssl.sh 1.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. #!/bin/bash

  2. 

  3. set -e

  4. 

  5. . ../conf/ssl.conf

  6. 

  7. user="$(stat -c %U "$0")"

  8. 

  9. asuser() {

  10. 	echo "Running as $user: " "$@"

  11. 	sudo -u "$user" "$@"

  12. }

  13. 

  14. printcol() {

  15. 	str="$1"

  16. 	shift

  17. 	for x in "$@"; do

  18. 		tput $x

  19. 	done

  20. 	printf "%s%s\n" "$str" $(tput sgr0)

  21. }

  22. 

  23. printed=0

  24. printstatus() {

  25. 	if [ "$printed" = 1 ]; then

  26. 		echo

  27. 	fi

  28. 	printed=1

  29. 	printcol "$1" bold

  30. }

  31. 

  32. certbot="https://github.com/certbot/certbot.git"

  33. 

  34. validate() {

  35. 	if [ -z "$email" ]; then

  36. 		echo "Missing config 'email'."

  37. 	elif [ -z "$domains" ]; then

  38. 		echo "Missing config 'domains'."

  39. 	elif [ -z "$testcert" ]; then

  40. 		echo "Missing config 'testcert'."

  41. 	elif [ -z "$dryrun" ]; then

  42. 		echo "Missing config 'dryrun'."

  43. 	elif [ -z "$precmd" ]; then

  44. 		echo "Missing config 'precmd'."

  45. 	elif [ -z "$postcmd" ]; then

  46. 		echo "Missing config 'postcmd'."

  47. 	else

  48. 		return 0

  49. 	fi

  50. 	exit 1

  51. }

  52. validate

  53. 

  54. if ! [ -d certbot ]; then

  55. 	asuser git clone "$certbot" certbot

  56. fi

  57. 

  58. if [ "$dryrun" = 1 ]; then

  59. 	printstatus "Running a dry run."

  60. fi

  61. 

  62. cd certbot

  63. printstatus "Updating certbot..."

  64. # necessary because certbot sometime schanges itself

  65. asuser git reset --hard

  66. asuser git pull

  67. 

  68. printstatus "Running pre command..."

  69. echo "$precmd"

  70. sh -c "$precmd"

  71. 

  72. printstatus "Obtaining certificates..."

  73. domains="$(echo "$domains" \

  74. 	| tr '\n' ' ' \

  75. 	| sed 's/\s*//g; s/\;/\n/g')"

  76. while read line; do

  77. 	if [ -z "$line" ]; then

  78. 		continue

  79. 	fi

  80. 

  81. 	cname=$(echo "$line" | sed 's/:.*//')

  82. 	dom=$(echo "$line" | sed 's/.*://')

  83. 

  84. 	printstatus "Certificate $cname"

  85. 	if ./certbot-auto certonly \

  86. 		-n --standalone --agree-tos \

  87. 		-m "$email" \

  88. 		--cert-name "$cname" \

  89. 		$([ "$testcert" = 1 ] && echo --test-cert) \

  90. 		$([ "$dryrun" = 1 ] && echo "--dry-run") \

  91. 		-d "$dom"

  92. 	then

  93. 		echo

  94. 		printcol "Certbot succeeded." "setaf 2" "bold"

  95. 	else

  96. 		fail=1

  97. 		echo

  98. 		printcol "Certbot failed." "setaf 1" "bold"

  99. 	fi

  100. done <<< "$domains"

  101. 

  102. printstatus "Running post command..."

  103. echo "$postcmd"

  104. sh -c "$postcmd"

  105. 

  106. if [ "$fail" = 1 ]; then

  107. 	exit 1

  108. else

  109. 	exit 0

  110. fi